Hackers are Actively Exploiting Apache Struts 2 Vulnerability
Hackers are taking advantage of a Critical Apache Struts Bug’s initial activity with limited IP addresses engaged in exploitation attempts. Apache is an open-source framework…
Category: CyberSecurityNews
Multi-layer Malware Sold on The Dark Web
Threat actors make use of fast-evolving multi-layer malware for their complexity and sophistication, as they offer the ability to rapidly adapt and change their code.…
116 Malicious PyPI Packages Downloaded Over 10,000 Times
A cluster of malicious Python projects has been identified in PyPI, the official Python PyPI package repository, which targets both Windows and Linux systems and often…
Multiple Flaws in Dell PowerProtect Products Execute Commands
Multiple vulnerabilities have been discovered in Dell’s PowerProtect, which were associated with SQL injection, cross-site scripting (XSS), privilege escalation, command injection, and path tracing. The…
New Hacker Group Uses SQL Injection to Hack Companies
A new threat actor has been discovered to be using SQL injection attacks to gain unauthorized access to organizations in the APAC region. This threat…
New Dark Web Market OLVX Advertising Variety of Hacking Tools
Threat actors exploit underground markets by purchasing or selling stolen data, malware, and hacking tools to facilitate cybercrime. These underground markets provide the following key…
Dynamic Malware Analysis using GPT-4 With 100% Recall Rate
A new prompt engineering-assisted Dynamic Malware Analysis model has been introduced, which can overcome the drawbacks faced in the quality API call sequences deployed for…
Zoom Mobile & Desktop App Flaw Let Attackers Escalate Privileges
The popular video conferencing software Zoom has security issues with its desktop and mobile apps that could allow for privilege escalation. An attacker may be…
Microsoft Seized Storm-1152 Websites to Sell Microsoft products
Hackers sell fake Microsoft products and accounts because it allows them to profit from illicit activities, taking advantage of unsuspecting users. Microsoft’s security team, partnered…
Beware of Malicious 7ZIP on the Microsoft App Store
Hackers target 7ZIP due to its widespread use and popularity, making it a lucrative vector for spreading malware. Exploiting vulnerabilities in 7ZIP allows them to…
Recruiters Beware! Hackers Deliver Malware Posing Job Applicant
Threat actors have been targeting recruiters disguised as job applicants to deliver their malware. Though this method is not unique, the technique and attack vectors…
Hackers Abuse OAuth Applications to Automated Finacial Attacks
OAuth (Open Authorization) is an industry-standard protocol that allows third-party applications to access a user’s data without exposing login credentials. This standard protocol facilitates secure…